Convert ASA 5500-X To FirePOWER Threat Defence
KB ID 0001490 Problem I’m seeing more and more people asking questions in forums about FTD, so I thought it was about time I looked at it. Cisco ASA 5500-X firewalls can now be re-imaged to run the FTD software. The thinking is that the FTD will merge the Cisco ASA product and the FirePOWER product into one unified operating system. Then that is managed by FDM (FirePOWER Device Manager), basically a web management GUI. Solution...
Cisco ASA – Password Recovery / Reset
KB ID 0000572 Problem Note: This procedure allows you to reset the password WITHOUT LOSING THE CONFIG You need to access a Cisco ASA device and do not have the passwords, there can be lots of reasons for this, lack of good documentation, bought a second hand firewall, the last firewall admin never told anyone etc. This method does require physical access to the ASA, a console cable, and a machine running some terminal emulation...
ASDM on Windows 10: ‘Cannot find Javaw.exe?’
KB ID 0001478 Problem Windows 10 machine, (with Latest Java installed), while attempting to launch the ASDM you see; Windows cannot find ‘javaw.exe’. Make sure you typed the name correctly, and then try again. Solution I should have fixed this a lot quicker than I did, because the error message was a lot more descriptive in older versions of Windows and the ASDM! This is the same problem seen on Windows 8. You still need...
Cisco ASA – Allow Remote Management
KB ID 0000173 Problem Quite a while ago I wrote the “Connecting to and managing Cisco firewalls” article, which is still pretty complete, but I’ve been asked on a few occasions, “How do I actually configure the firewall to allow remote administration via, SSH, or HTTPS/ASDM, or Telnet If you have no network connection to the firewall, then you will need to connect via console cable (CLICK HERE). Solution...
Cisco ASA No Debug Output?
KB ID 0001477 Problem I see this get asked in forums A LOT, typically the poster has another problem they are trying to fix, someone has asked them to debug the problem and they cant see any debug output. Solution Firstly you need to understand what logging is, and how debugging fits within it. (Bear with me, this is good knowledge to have). The firewall saves logs in syslog format, and there are 8 Levels of logs, the one with the...
Cisco AnyConnect With Server 2016 NPAS (RADIUS) Different Groups
KB ID 0001474 Problem A few years ago I replaced a firewall that was setup like this, and while it took me a while to work out what was going on, I remember thinking it was an elegant solution. Fast forward to today, and I’m now working with the guy who set it up! (Kudos to Paul White). So when I had a client with a similar requirement, I sat down fired up the lab, and documented it. What was used; Windows 10 Remote Client...